Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: 9tgoFylXhkDB+RMNWWxzyaPowi83b9w1/qC0daRfBtM=
Subject key identifier: 55:43:3E:B8:FF:B5:C7:F1:90:83:D6:9E:AF:A2:A8:52:2D:22:D1:F1
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 019EF75C6404FBE682F0B0E6ED54C36ACE35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 1679
Signing time: Wed 24 Jun 2026 02:01:27 +0000
Manifest this update: Wed 24 Jun 2026 02:01:27 +0000
Manifest next update: Thu 25 Jun 2026 02:01:27 +0000
Files and hashes: 1: beStaP3U9BouVtR6HKL7Bht809g.roa (hash: 9C0Yz+gtWBKD86eXJ/yNK0jQEWAJqpkTW4DLxbpVN08=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: 34b0BHfnZqZ8MC34Y+fpTNGvvo3H8pC97eY6Xgr5wwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f7:5c:64:04:fb:e6:82:f0:b0:e6:ed:54:c3:6a:ce:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Jun 24 02:01:27 2026 GMT
Not After : Jun 25 02:01:27 2026 GMT
Subject: CN=55433eb8ffb5c7f19083d69eafa2a8522d22d1f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3a:eb:fa:d7:9b:09:ee:7b:eb:28:ab:12:07:
0c:dd:a1:be:9c:91:a0:e1:93:83:f2:cc:fe:a5:af:
a4:d1:5f:a9:ba:35:ee:fa:a6:94:8b:b2:13:dc:88:
cd:e0:b6:67:29:ca:b6:19:81:78:77:43:40:2c:c3:
96:62:82:f9:ea:b8:20:1b:61:64:72:75:d5:5d:ec:
3d:be:76:d4:dc:a4:6a:66:17:1c:a2:6e:11:8b:fc:
d2:f6:53:11:26:4d:45:d9:72:c1:dc:c2:c9:67:95:
20:5b:c6:d1:4f:90:65:ca:84:89:e1:34:2d:e9:2f:
b3:1d:db:c4:54:21:7c:04:02:21:db:9a:90:5c:c2:
88:39:4e:51:24:13:e5:6e:66:81:a3:8b:83:65:46:
4f:24:4d:22:44:56:04:3f:31:24:18:23:57:6e:c8:
83:e7:3d:49:7b:df:dd:fc:75:34:35:4f:2e:f9:19:
6f:e1:6a:7c:87:14:50:94:24:be:a9:a7:8e:29:41:
78:74:a0:cf:95:8b:3d:c9:9c:7b:38:ff:d4:03:5d:
1b:bc:2b:9f:6a:fb:eb:99:15:80:5b:75:52:d0:2c:
dc:de:4d:19:74:21:ec:5e:92:49:0a:5c:78:e7:13:
a3:99:06:de:2a:1e:e7:96:e6:17:a9:db:57:ea:b3:
f1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:43:3E:B8:FF:B5:C7:F1:90:83:D6:9E:AF:A2:A8:52:2D:22:D1:F1
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:75:27:5e:87:3e:ef:cb:ac:79:45:f7:24:76:7d:82:60:82:
bc:2d:e1:9d:fa:f6:f0:6b:d7:0b:ef:d2:97:05:3b:d5:51:c6:
1a:00:a5:54:ca:58:32:01:0f:3c:c0:64:7d:38:ad:b3:6b:d4:
5d:ff:db:96:4f:77:2f:05:a6:e3:60:05:e2:7a:69:ab:35:2c:
09:fc:59:b4:57:04:bc:41:ea:3c:63:19:6d:20:c7:87:df:6f:
a8:06:64:be:9f:e8:d0:a9:43:16:dc:94:a2:1d:56:09:63:81:
ed:7d:73:a2:e6:ba:54:d4:5a:ac:90:23:dc:31:76:8f:1a:b6:
b3:ab:8d:48:03:d7:dd:b2:48:f6:3f:e7:9b:cb:d8:7d:1c:c3:
dd:20:0a:00:e1:2f:20:ac:3c:d2:f1:6f:9d:b9:07:02:22:95:
0d:48:ee:f4:a3:44:de:2d:0a:c1:ab:86:f0:67:d0:69:fe:8a:
9d:1e:65:89:94:bc:93:16:cd:aa:50:94:6e:c0:48:5d:d3:f5:
42:66:ed:a8:87:95:37:60:1d:e0:1f:12:d5:8e:8e:34:ae:63:
40:3a:de:f3:38:b1:fd:73:69:97:f0:48:df:5f:50:c9:4e:ba:
5b:90:b0:bc:a9:79:5e:97:a8:de:e2:c0:65:9b:51:b9:d5:8b:
57:c7:dd:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 12:33:26 2026 by rpki-client